Closed dinosaure closed 2 years ago
palainp
commented
2 years ago I currently need the block for the encryption layer (encryption gives me back a block that a use as a kv store with chamelon) because this was my usecase (having an mountable encrypted directory). Anyway, thanks for the suggestion I'll think about it and may drop the encryption layer in favor of the usability to choose the underlying fs :+1:
dinosaure
commented
2 years ago I'll think about it and may drop the encryption layer in favor of the usability to choose the underlying fs 👍
In such case, it's probably good to have a thin-layer such as:
module With_CCM = functor (Mirage_block.S) -> Mirage_block.SAnd make it as a mirage/functoria device 🙂 . In the config.ml, it will be:
let my_initial_block = block_of_file "disk.img"
let my_block_with_ccm = block_with_encryption `CCM my_initial_block
let my_fs = chamelon my_block_with_ccm
let () = main $ my_fsI merged the branch changing mirage_block to mirage_kv.RW. It should be fine now, and you can try that (with a minor edition of src/config.ml) using mirage-kv-mem with:
ssh-keygen -t ed25519 -C mirage_sshfs -f test -N '' && \
chmod 600 test && \
./src/dist/mirage_sshfs --user test --key "$(cat test.pub | sed 's/ /\\ /g')"And in another terminal:
sshfs test@127.0.0.1:/ /tmp/ssh/ -o IdentityFile=/absolute/path/to/privkey/test
The idea will be to unlock the ability to let the end-user to choose its implementation of the file-system. By this way, the
unikernel.mlwill require aMirage_kv.Sdirectly and we will let theconfig.ml/the end-user to choose which implementation of the KV-store he/she wants.